Conversation

Notices

1. Embed this notice
   silverwizard (silverwizard@convenient.email)'s status on Wednesday, 23-Apr-2025 00:05:46 JST silverwizard
   @stsp I had to just put fail2ban on the search endpoint on my friendica node just the other day. I only block people who try twice, and I'm still catching thousands. It's wild right now, how is this going to shake out, damn.
   • Embed this notice
     silverwizard (silverwizard@convenient.email)'s status on Wednesday, 23-Apr-2025 07:46:57 JST silverwizard

     in reply to

     • hypolite

     @hypolite @stsp what I can see is:
     Most IPs hit me once, with rare exceptions for twice
     Most IPs are on cheap VPSes (like Fediverse nodes)
     Most use an Opera User Agent, but that's random

     so - in theory, it's hard. But for me they were just hammering node search, so I made search return a 500, and banned IPs that hit search twice, but that wont help anyone else. They're very designed to make it hard to ban them.

   • Embed this notice
     hypolite (hypolite@friendica.mrpetovan.com)'s status on Wednesday, 23-Apr-2025 07:46:59 JST hypolite

     in reply to
     @silverwizard @stsp I briefly considered Dark Visitors, but it only updates robots.txt files, which these crawlers ignore. I’d be interested in a hands-off solution involving iptables or fail2ban, I won’t spend my time playing cat-and-mouse.
   • Embed this notice
     hypolite (hypolite@friendica.mrpetovan.com)'s status on Wednesday, 23-Apr-2025 08:00:38 JST hypolite

     in reply to
     @silverwizard @stsp A plague the houses of the engineers who built this kind of criminal infrastructure for corporations.
     silverwizard likes this.